This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft File: pOcgX11BJXpruV-QDuwKESPnUWQ.mft (raw, json) Hash identifier: mu0A1JkWQsllPBYJvHE70Ib3pI+POLfsnnDqdokreT4= Subject key identifier: 2E:CF:CE:E4:8D:80:72:DE:C4:50:EE:E0:F8:BC:AA:62:6C:99:90:BD Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64 Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164 Certificate serial: 019B3DFE46C69F7D80E116019DB336489E92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft Manifest number: 179F Signing time: Sat 20 Dec 2025 23:00:32 +0000 Manifest this update: Sat 20 Dec 2025 23:00:32 +0000 Manifest next update: Sun 21 Dec 2025 23:00:32 +0000 Files and hashes: 1: Kiv_IviKdC8pR128g7W0wceOpJ0.roa (hash: 50AAjX5lYU+hq4n12QkFVtcpqB6XzbZl6EuH3DlX6GI=) 2: O_qQBhVPe-lhoDKH0xP6ZLUmsAc.roa (hash: vu+grp6AJx6fVYcuWsQuJ7+juO2NiGJWuGAUCa5tGZs=) 3: dDDN-pm8MlP2fOpMtU7-mmZpLLc.roa (hash: GvJAp02zQtdWF4HXdYEMtMpvRfe1B4IDC0v2UHRYRus=) 4: kEWIZIp3fGY-KVqozb7d7-QMIuc.roa (hash: L3fmE7U8zD+tZ/ANMEm2Wevq9RhCHsMPy3iz467v0Hg=) 5: pOcgX11BJXpruV-QDuwKESPnUWQ.crl (hash: 9esB7NP7aexMgqxSdgN+H3smYdM+i7Iov9p7tEyo5Ac=) 6: uU8hg8XfSe6mwX3ueW5oYDrRF0Q.roa (hash: UINusGV6ey+o0z0wW+D1a6Sa38oHaCWzK5v34NCpA+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 23:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:fe:46:c6:9f:7d:80:e1:16:01:9d:b3:36:48:9e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164 Validity Not Before: Dec 20 23:00:32 2025 GMT Not After : Dec 21 23:00:32 2025 GMT Subject: CN=2ecfcee48d8072dec450eee0f8bcaa626c9990bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4e:a2:a5:3b:e0:33:4a:a6:4c:2f:2f:fe:8f: 91:8d:d6:29:07:3c:d4:58:8a:c8:f1:2f:90:67:8e: 1e:5c:df:aa:bb:57:d3:44:58:9f:23:c5:ff:75:b3: dd:17:35:67:03:50:81:42:de:a8:17:d6:a2:dd:bb: 74:85:eb:45:a2:24:f0:aa:17:37:ba:a5:6c:f4:5a: f4:02:c7:9a:9c:36:d8:0b:1e:8b:6a:ed:b5:b5:f6: 29:55:c3:98:25:5f:72:bd:8e:0c:f4:fb:bf:b0:06: 22:a2:03:ea:c2:5d:a0:71:c2:89:60:73:2f:48:d3: b9:ed:d5:e0:65:82:ad:f8:52:80:56:14:3c:75:d2: 6a:8f:0d:2d:73:0c:ba:e0:1c:53:28:cc:d5:bb:33: e6:e1:85:cb:36:37:ea:29:a9:d7:aa:4c:0e:94:3f: 5f:ed:e5:e0:f0:86:6b:b7:c0:13:f5:a1:81:b2:4f: 31:fa:3c:f4:3d:d0:dd:9b:70:dc:70:eb:2c:e0:a9: bc:5a:d0:bc:85:22:cf:08:d4:8c:65:e3:7b:31:9c: 8a:79:5d:53:58:b3:63:4b:83:74:73:22:d5:77:4c: 08:ce:e3:18:22:a8:fb:8a:47:cc:b7:f1:71:a1:4a: 3e:2a:bf:79:7b:85:2f:4f:4b:26:3c:ce:e9:64:09: eb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CF:CE:E4:8D:80:72:DE:C4:50:EE:E0:F8:BC:AA:62:6C:99:90:BD X509v3 Authority Key Identifier: keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:37:da:fa:c2:27:8e:8c:a1:dc:ae:19:7c:6b:60:13:ca:c3: 6c:ff:2c:00:d1:01:ee:1b:00:d8:f7:bc:76:92:15:cc:33:14: 26:f2:15:8e:6a:02:5b:7f:5d:86:06:80:24:06:1c:74:0e:a9: 67:6d:58:72:60:dd:aa:b1:39:19:7e:b7:32:76:3e:28:2f:85: 60:54:bb:2c:43:11:be:2e:51:aa:b0:3b:05:46:2f:82:53:48: be:e8:c6:15:87:01:35:f9:a0:af:0d:f6:4e:da:a3:08:3f:de: 7d:53:cb:d3:9b:3a:0e:ca:fd:81:6f:0e:06:60:ee:91:9c:cd: b3:80:53:fd:8b:de:5f:ef:e3:36:10:8f:b1:6e:d6:12:df:99: e3:76:a5:b7:e5:b7:60:62:7e:39:6c:3d:06:74:23:0e:ed:74: c0:c8:07:0c:d4:49:cc:76:68:e5:32:44:c1:4d:42:b2:87:2e: 43:35:af:f0:8d:76:d8:b1:db:62:36:cb:c1:e5:86:a8:01:70: f5:ca:a0:60:91:c9:f5:13:ed:15:1c:18:c7:bb:ef:85:11:5a: 1b:ad:ab:a9:0d:bf:fc:d6:f9:13:7c:61:c0:49:93:1d:72:67: 18:20:61:59:d0:6a:28:b3:d4:b2:ac:fa:2b:9b:ea:6b:b0:fc: de:12:38:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/kbGn32A4RYBnbM2SJ6SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZTcyMDVmNWQ0MTI1N2E2YmI5NWY5MDBlZWMwYTExMjNl NzUxNjQwHhcNMjUxMjIwMjMwMDMyWhcNMjUxMjIxMjMwMDMyWjAzMTEwLwYDVQQD EygyZWNmY2VlNDhkODA3MmRlYzQ1MGVlZTBmOGJjYWE2MjZjOTk5MGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9U6ipTvgM0qmTC8v/o+RjdYpBzzU WIrI8S+QZ44eXN+qu1fTRFifI8X/dbPdFzVnA1CBQt6oF9ai3bt0hetFoiTwqhc3 uqVs9Fr0AseanDbYCx6Lau21tfYpVcOYJV9yvY4M9Pu/sAYiogPqwl2gccKJYHMv SNO57dXgZYKt+FKAVhQ8ddJqjw0tcwy64BxTKMzVuzPm4YXLNjfqKanXqkwOlD9f 7eXg8IZrt8AT9aGBsk8x+jz0PdDdm3DccOss4Km8WtC8hSLPCNSMZeN7MZyKeV1T WLNjS4N0cyLVd0wIzuMYIqj7ikfMt/FxoUo+Kr95e4UvT0smPM7pZAnrrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7PzuSNgHLexFDu4Pi8qmJsmZC9MB8GA1UdIwQY MBaAFKTnIF9dQSV6a7lfkA7sChEj51FkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDkt M2U1OWNlNDQ1YjFjLzEvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDktM2U1OWNlNDQ1YjFj LzEvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDfa+sIn joyh3K4ZfGtgE8rDbP8sANEB7hsA2Pe8dpIVzDMUJvIVjmoCW39dhgaAJAYcdA6p Z21YcmDdqrE5GX63MnY+KC+FYFS7LEMRvi5RqrA7BUYvglNIvujGFYcBNfmgrw32 TtqjCD/efVPL05s6Dsr9gW8OBmDukZzNs4BT/YveX+/jNhCPsW7WEt+Z43alt+W3 YGJ+OWw9BnQjDu10wMgHDNRJzHZo5TJEwU1CsocuQzWv8I122LHbYjbLweWGqAFw 9cqgYJHJ9RPtFRwYx7vvhRFaG62rqQ2//Nb5E3xhwEmTHXJnGCBhWdBqKLPUsqz6 K5vqa7D83hI4GQ== -----END CERTIFICATE-----Generated at Sun Dec 21 06:54:26 2025 by rpki-client